Eureka AIR delivers breakthrough ideas for toughest innovation challenges, trusted by R&D personnel around the world.

Unknown threat perception method and system based on active self-paced learning, storage medium and terminal

An unknown threat, self-paced technology, applied in the field of network security, can solve problems such as poor robustness, model false positives, network threats cannot be identified and alarmed, and achieve the effect of improving accuracy and accuracy

Inactive Publication Date: 2019-05-28
TIANYI ELECTRONICS COMMERCE
View PDF7 Cites 8 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] (1) Use a single machine learning method to determine and identify known types of cyber threats, resulting in insufficient accuracy and poor robustness of cyber threat identification;
[0005] (2) The sample data used must be sufficient, otherwise the trained model is prone to overfitting and a large number of false positives;
[0006] (3) The model can only target one known network threat, for example, it can identify DDOS attacks, but cannot identify Advanced Persistent Threat (APT) alarms;
[0007] (4) Unable to identify and call the police on unknown network threats. For example, the ransomware attack that appeared in 2017 escaped the monitoring of many security systems

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Unknown threat perception method and system based on active self-paced learning, storage medium and terminal
  • Unknown threat perception method and system based on active self-paced learning, storage medium and terminal
  • Unknown threat perception method and system based on active self-paced learning, storage medium and terminal

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0045] Embodiments of the present invention are described below through specific examples, and those skilled in the art can easily understand other advantages and effects of the present invention from the content disclosed in this specification. The present invention can also be implemented or applied through other different specific implementation modes, and various modifications or changes can be made to the details in this specification based on different viewpoints and applications without departing from the spirit of the present invention.

[0046] It should be noted that the diagrams provided in this embodiment are only schematically illustrating the basic idea of ​​the present invention, and only the components related to the present invention are shown in the diagrams rather than the number, shape and shape of the components in actual implementation. Dimensional drawing, the type, quantity and proportion of each component can be changed arbitrarily during actual impleme...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides an unknown threat perception method and system based on active self-paced learning, a storage medium and a terminal. The unknown threat perception method comprises the followingsteps: selecting a label-free sample with the information amount greater than a first preset threshold value for manual labeling based on an active learning selection strategy; Selecting a label-freesample with the confidence higher than a second preset threshold based on a self-learning selection strategy to carry out prediction labeling; Training a log classification model based on samples ofmanual annotation and predictive annotation; And sensing unknown threats in the network data based on the trained log classification model. According to the unknown threat perception method and systembased on active self-paced learning, the storage medium and the terminal, the accuracy of network threat recognition is improved through a mode of combining manual annotation and predictive annotation, and an unknown network can be recognized.

Description

technical field [0001] The present invention relates to the technical field of network security, in particular to an unknown threat perception method, system, storage medium and terminal based on active self-paced learning. Background technique [0002] Network security means that the hardware and software of the network system and the data in the system are protected from being damaged, changed, or leaked due to accidental or malicious reasons, the system runs continuously and reliably, and the network service is not interrupted. In the existing technology, the perception of unknown threats is usually based on network log data, extracting data features, manually labeling a sufficient amount of sample data, and using a single machine learning method for model training. After the model is trained, the Known types of network threat behaviors in network flow data are identified and classified, and alarms are given. [0003] However, the above method has the following defects: ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06G06K9/62
Inventor 彭大祥严永峰马颂华吴超
Owner TIANYI ELECTRONICS COMMERCE
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Eureka Blog
Learn More
PatSnap group products